About 20 percent of third-party apps available through the Android marketplace allow third-party access to sensitive data, and can do things like make calls and send texts without the owners' knowledge, according to a recent security report from security firm SMobile Systems. There's no indication that any of the highlighted apps is malicious, but the report does underscore the inherent risks of a more open ecosystem as opposed to Apple's oppressive yet more controlled environment, with every app being vetted before availability.

This might not be directly related to article, but why in the mobile world there is more emphasis on installing apps. Didn't we on the desktop OS move from installing apps to virtually do everything using a browser.
Steve said html5 is the future so why aren't there many html5 apps which should negate many security issues.